Welcome to our July 2022 review of data breaches and cyber attacks. We identified 85 security incidents during the month, resulting in 99,243,757 compromised records.
You can find the full list below, broken down into categories.
Cyber attacks
- ATC Healthcare in New York issues press release about a breach (unknown)
- Community of Hope DC discloses security incident (unknown)
- The People Concern suffers cyber attack (unknown)
- Verified Twitter accounts hacked to send fake suspension notices (unknown)
- Hackers leak private data of from UK schools to dark web (unknown)
- Information of patients and employees at Kokikai Yasue Hospital leaked (111,906)
- Cyber attack suspends Cedar Rapids summer school activities (unknown)
- Southwest Health Center notifies individuals whose protected health information was accessed (unknown)
- SHI targeted in malware attack (unknown)
- Hacker infiltrates the Booking.com account of the Marino Boutique Hotel in Lisbon (unknown)
- Hackers have access to bank details, signatures, addresses and national insurance numbers, Gloucester councillor reveals (unknown)
- Neurological Injury Compensation Association says employee email accounts were compromised (unknown)
- Child and Family Services in Massachusetts discloses security incident (unknown)
- North American Spine Society announces data breach (unknown)
- Comic book reading Mangatoon discloses huge breach (23 million)
- Associated Eye Care Partners discloses security incident at third party (40,793)
- Pennsylvania-based Family Practice Center reveals cyber attack (unknown)
- The Department of Indre-et-Loire victim of a cyber attack (unknown)
- Australia’s Deakin University targeted in cyber attack (47,000)
- Tel Aviv municipality website targeted in latest Iraqi cyberattack against Israeli institutions
- Colorado Springs Utilities notified after unauthorized data access (200,000)
- Lithuanian ad website hit by cyber attack, warns of possible customer data leak (unknown)
- Israel’s Health Ministry website down after DDoS attack (unknown)
- Walmart-controlled flight booking service suffers substantial data leak (unknown)
- Newfoundland and Labrador’s largest health authority has notified people that their privacy was breached (37,800)
- Neopets data breach exposes members’ personal data (69 million)
- Perth Festival, Black Swan Theatre and other arts organisations hit by cyber attackers (unknown)
- Prominent BC LGBTQ+ advocacy group hit by cyber attack (unknown)
- Oklahoma City Housing Authority provides notice of data incident (unknown)
- City of Newport advising past, current employees of potential data loss (unknown)
- Twitter vulnerability exposes data from user accounts (5.4 million)
- Idaho-based St. Luke’s vendor suffers data breach affecting some patients (31,573)
- NetStandard shuts down Cloud services to fend off cyber attack (unknown)
- Newfoundland and Labrador English School District confirms security incident (unknown)
- Infinity Rehab and Avamere Health Services notify patients about breach at Avamere (380,984)
- Afni, Inc. announces security incident (unknown)
- Clinivate, LLC says its systems were compromised (77,000)
- DigiPen Institute of Technology discloses cyber attack (unknown)
- Proliant Settlement Systems, LLC announces security incident (12,967)
- Gannon Associates Insurance Agency suffers cyber attack (unknown)
- Benefit Plan Administrators announces security incident (unknown)
- Arhaus says unauthorised person accessed employee information (unknown)
- Northcentral University announces security incident affecting sensitive student information (unknown)
- Southern Environmental reports security incident affecting current and former employees (unknown)
- Centerspace, LP files notice following unauthorised access to consumer data (unknown)
- Lawson Products reports security incident (unknown)
Ransomware
- Professional Finance Company provides notice of ransomware attack (unknown)
- College of the Desert victimized once again by ransomware (unknown)
- Lamoille Health Partners hit by BlackByte ransomware (unknown)
- Gateway Rehab struck by ransomware (unknown)
- Mattituck School District targeted in ransomware attack (unknown)
- Carolina Behavioral Health Alliance in North Carolina notifies law enforcement about a ransomware attack (138,000)
- The Prefeitura Municipal de Itapermirim in Brazil in ransomware attack (unknown)
- Baton Rouge General Medical Center ransomware attack has caused patients to be diverted to other hospitals (unknown)
- The Canadian College MontMorency under the blows of ransomware attack (unknown)
- Rhode Island sewer-system operator hit by cyber attack (unknown)
- South Korean call taxi system paralyzed by ransomware attack (unknown)
- Canada’s Waterloo Region District School Board hit by ransomware (unknown)
- Bellingham Public Library notifying patrons of data breach (735)
- St. Mary’s, Canada, being held to ransom (unknown)
- Digital security giant Entrust breached by ransomware gang (unknown)
- Blue Shield of California and BS Promise Health Plan reveal that members impacted by incident involving OneTouchPoint (1,506)
Data breaches
- Researcher discovers data leak on check-in app for WeWork India (unknown)
- VCU Health identifies and addresses a 16-year privacy breach (4,441)
- Probe after City College Norwich emails personal details by mistake (unknown)
- Anonymous mental health app Feelyou accidentally exposed personal emails (70,000)
- Technical problem causes security breach in Tooele County School District (unknown)
- City of Detroit retirees data breach causes concern (unknown)
Financial information
- Misconfigured database belonging to Proud Makatizen leaks data (620,000)
- Hilton Garden Inn Cleveland Downtown warns of credit card data breach (unknown)
- Vista Bank reports data breach affecting Social Security numbers (14,418)
- Allied Urological Services announces data breach impacting patients’ financial data (52,981)
Malicious insiders and miscellaneous incidents
- Folders containing people’s private information found by Jacksonville landscaper (unknown)
- Cheyenne Regional Medical Center employee inappropriately accessed patient health records (1,652)
- Phoenixville Hospital notifying patients after discovering improper EMR access by employee (unknown)
- Central Florida construction firm says ex-employee snatched firm’s records (unknown)
- Kelowna nurse suspended for accessing patient’s medical records (1)
- Top secret documents scattered in street after careless disposal by German Chancellor Scholz (unknown)